Google Tests Passkey Import and Export in Password Manager
Google Password Manager on Android is quietly gaining a crucial capability: the ability to import and export passkeys alongside traditional passwords. Hidden options labeled “Import passwords & passkeys” and “Export passwords & passkeys” have been activated in testing, replacing the existing password-only controls. While not yet live for everyone, the feature is already functional in internal builds, suggesting that system-level support for passkey export on Android is largely in place. Instead of a simple file-based export, Google’s description says users will be prompted to transfer passkeys when they open another compatible password manager app. This design keeps the process tightly integrated with Android’s security stack and Google Play Services, which handle the secure shuffling of credentials. Once rolled out, it will allow Google Password Manager passkeys to move between apps on the same device, addressing a major gap in Android’s passkey story.
How the Credential Exchange Protocol Enables Portability
Behind Google’s new import and export options sits the Credential Exchange Protocol (CXP), an emerging standard driven by the FIDO Alliance. CXP is designed specifically to solve a long-standing problem: securely moving passkeys from one device or password manager to another without exposing the private key. On Android, CXP transfers rely on Google Play Services and Google Password Manager as the underlying transport, enabling seamless exchanges between different providers on the same device. Apple’s latest iOS and macOS versions, along with major password managers like Bitwarden and 1Password, already use CXP to support passkey migration. Until now, Google had backed the standard in principle but had not fully implemented it in Android’s default manager. With this groundwork now visible, Android users can realistically expect password manager portability that matches what Apple users already enjoy, at least among providers that support CXP.
Closing the Gap with Apple and Reducing Vendor Lock-In
Apple has already introduced a way to move passkeys from its native keychain to third-party password managers on the latest iOS and macOS releases, giving users flexibility to adopt tools like Bitwarden or 1Password without starting from scratch. Android has lagged behind, even though Google syncs passkeys across devices within its own ecosystem. The new Google Password Manager passkeys import and export feature brings Android much closer to parity. Users will be able to switch password managers while retaining their existing passkeys, significantly reducing vendor lock-in. Early evidence suggests support may initially be limited to providers that back CXP, such as Google, Apple, Samsung, and select established managers. Even with that caveat, the move signals a broader shift: passkey export Android capabilities are no longer experimental concepts but practical features that empower users to choose their preferred security tools.
Why Passkey Portability Matters for the Post-Password Future
Passkeys are widely seen as the successor to passwords because they are easier to use and more resistant to phishing and credential stuffing. However, a key barrier to adoption has been the fear of getting trapped in a single ecosystem or app. If you could not easily move your passkeys, switching password managers or phones risked losing access, undermining confidence in the technology. Google’s move to support passkey export Android-wide directly addresses this usability concern. With password manager portability built into the platform, users can experiment with different providers, migrate away from services they no longer trust, and consolidate credentials without recreating every login. As more apps and websites adopt passkeys, this flexibility will be essential. It turns passkeys from a platform-specific convenience into a truly portable, long-term alternative to passwords, helping the broader ecosystem move decisively beyond traditional credentials.